Systems and methods for customer authentication based on audio-of-interest

ABSTRACT

In one embodiment, certain words or phrases spoken by customers during calls to a call center are used to identify or authenticate the user. Words or phrases such as a customer&#39;s name, or an account number or telephone number, are selected for a customer. Recordings of the selected words or phrases spoken by the customer during previous calls are used to generate voiceprints that are stored and associated with the customer. Later, when the customer calls the call center, instances of the customer speaking the selected words are extracted from the call (referred to herein as “audio-of-interest”) and are compared against the voiceprints stored for the customer. If the voiceprints match the audio-of-interest the customer is authenticated.

BACKGROUND

Customer authentication and identification is important to a variety of industries. In an environment such as a call center, typically customers are identified based on the telephone phone number or account number that they used to contact the call center and/or based on the name that they provided to an agent. The customers are then authenticated (i.e., is the customer who they say they are) by asking the customers to answer secret questions, or by using two factor authentication.

However, current methods for customer identification and authentication are cumbersome and may be susceptible to manipulation by bad actors. For example, with respect to identification, a bad actor may spoof the phone number of a known customer and may pretend to be the customer when speaking with the agent. With respect to authentication, the bad actor may have learned the answer to the secret questions or other customer information using social engineering. While two factor authentication provides enhanced authentication, many customers have not set it up, or may find it cumbersome to use, which may lead to customer frustration and a poor call center experience. Therefore, what is needed is a way to improve customer identification and authentication, without providing additional burdens on the customer.

SUMMARY

In one embodiment, certain words or phrases spoken by customers during calls to a call center are used to identify or authenticate the user. Words or phases such as a customer's name, or an account number or telephone number, are selected for a customer. Recordings of the selected words or phrases spoken by the customer during previous calls are used to generate voiceprints that are stored and associated with the customer. Later, when the customer calls the call center, instances of the customer speaking the selected words are extracted from the call (referred to herein as “audio-of-interest”) and are compared against the voiceprints stored for the customer. If the voiceprints match the audio-of-interest the customer is authenticated. The extracted audio-of-interest can be further used to identify the customer by matching the extracted audio-of-interest against voiceprints stored for multiple customers. The extracted audio-of-interest can be further compared against voiceprints stored for known bad actors or “fraudsters” to identify and prevent fraud.

As will be discussed further below, the embodiments described herein provide many benefits over prior systems for authentication and identification. First, by authenticating or identifying a customer using audio-of-interest extracted from the call, the customer is not required to actively participate in the authentication or identification process during the call. For example, the customer is no longer expected to provide information such as their address or answers to long forgotten security questions. Second, because the voiceprints for each customer may be generated automatically for a customer based on customer interactions, the customer is not required to participate in a separate training phase or session where the customer is asked to repeatedly speak selected words and phrases. As a result of the benefits of the embodiments described herein, the overall call experience for customers is improved, the average call length is reduced, and the detection of fraudulent activities is improved.

In one embodiment, a system for authenticating and identifying customers is provided. The system includes one or more processors and a memory communicably coupled to the one or more processors. The memory stores an interest module and a biometrics module. The interest module may include instructions that when executed by the one or more processors cause the one or more processors to: receive a call, wherein the call is associated with a customer; and extract audio-of-interest from the received call. The biometrics module includes instructions that when executed by the one or more processors cause the one or more processors to: receive the audio-of-interest; retrieve one or more voiceprints associated with the customer; based on the one or more voiceprints and the audio-of-interest, determine if the customer is authenticated; and if it is determined that the customer is authenticated, transmitting a message that the customer is authenticated.

Embodiments may include some or all of the following features. The biometrics module may further include instructions that when executed by the one or more processors cause the one or more processors to: if it is determined that the customer is not authenticated, perform a secondary authentication. Determining if the customer is authenticated may include: determining that one or more of the one or more voiceprints associated with the customer matches at least a portion of the audio-of interest with a confidence that satisfies a threshold confidence; and determining that the customer is authenticated in response to determining that the confidence satisfies the threshold confidence. The interest module may further include instructions that when executed by the one or more processors cause the one or more processors to: detect that audio-of-interest is being spoken by the customer; and extract the audio-of-interest from the received call in response to detecting that the audio-of-interest is being spoken. The interest module may further include instructions that when executed by the one or more processors cause the one or more processors to: determine that audio-of-interest is likely to be spoken by the customer based on a workflow associated with the call; and extract the audio-of-interest from the received call in response to determining that the audio of interest is likely to be spoken by the customer. The audio-of-interest may include one or more words or phrases spoken by the customer during the call. The audio-of-interest may include a non-consecutive sequence of words or phrases spoken by the customer during the call. The biometrics module may further include instructions that when executed by the one or more processors cause the one or more processors to: receive the audio-of-interest; retrieve one or more voiceprints associated with each customer of a plurality of customers; based on the one or more voiceprints and the audio-of-interest, identify the customer associated with the call from among the plurality of customers; and transmit a message that the customer is identified. The biometrics module may further include instructions that when executed by the one or more processors cause the one or more processors to: receive the audio-of-interest; retrieve one or more voiceprints associated with fraudulent customers of a plurality of customers; based on the one or more voiceprints and the audio-of-interest, identify the customer associated with the call as a fraudulent customer; and transmit a message that the customer is a fraudulent customer. Extracting audio-of-interest from the received call may include extracting audio-of-interest from a recording of the received call. Extracting audio-of-interest from the received call comprises extracting audio-of-interest from the received call in real time.

In an embodiment, a method for authenticating and identifying customers is provided. The method includes: receiving a call, wherein the call is associated with a customer; extracting audio-of-interest from the received call; retrieving one or more voiceprints associated with the customer; based on the one or more voiceprints and the audio-of-interest, determining if the customer is authenticated; and if it is determined that the customer is authenticated, transmitting a message that the customer is authenticated.

Embodiments may include some or all of the following features. The method may further include: if it is determined that the customer is not authenticated, performing a secondary authentication. Determining if the customer is authenticated may include: determining that one or more of the one or more voiceprints associated with the customer matches at least a portion of the audio-of interest with a confidence that satisfies a threshold confidence; and determining that the customer is authenticated in response to determining that the confidence satisfies the threshold confidence. The method may further include: detecting that audio-of-interest is being spoken by the customer; and extracting the audio-of-interest from the received call in response to detecting that the audio-of-interest is being spoken. The method may further include: determining that audio-of-interest is likely to be spoken by the customer based on a workflow associated with the call; and extracting the audio-of-interest from the received call in response to determining that the audio of interest is likely to be spoken by the customer. The audio-of-interest may include one or more words or phrases spoken by the customer during the call. The audio-of-interest may include a non-consecutive sequence of words or phrases spoken by the customer during the call. The method may further include: receiving the audio-of-interest; retrieving one or more voiceprints associated with each customer of a plurality of customers; based on the one or more voiceprints and the audio-of-interest, identifying the customer associated with the call from among the plurality of customers; and transmitting a message that the customer is identified.

In an embodiment, a non-transitory computer-readable medium is provided. The medium includes instructions stored thereon that when executed by a processor cause the processor to: receive a call, wherein the call is associated with a customer; extract audio-of-interest from the received call; retrieve one or more voiceprints associated with the customer; based on the one or more voiceprints and the audio-of-interest, determine if the customer is authenticated; and if it is determined that the customer is authenticated, transmit a message that the customer is authenticated.

In an embodiment, a system for authenticating and identifying customers is provided. The system includes an interest module and a biometrics module. The biometrics module: receives the audio-of-interest; receives zero or more voiceprints for a customer; creates or enhances the voiceprints for said customer to include additional audio-of-interest; and stores the voiceprint for later usage.

Embodiments may include some or all of the following features. The voiceprint may not become active for verification until the associated customer is verified and not a fraudulent actor. The voiceprint may be originally created on passive biometrics using the audio-of-interest comprising of the whole call and later enhanced to include other more specific audio-of-interest voiceprints. The voiceprint may become active for verification based on a 2-factor authentication or other secondary authentication method. The voiceprint may become active after it passes a threshold for accuracy and performance measure. The added voiceprint may be enhanced with audio specific to a device or medium with different audio qualities.

This summary is provided to introduce a selection of concepts in a simplified form that are further described below in the detailed description. This summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used to limit the scope of the claimed subject matter.

BRIEF DESCRIPTION OF THE DRAWINGS

The foregoing summary, as well as the following detailed description of illustrative embodiments, is better understood when read in conjunction with the appended drawings. For the purpose of illustrating the embodiments, there is shown in the drawings example constructions of the embodiments; however, the embodiments are not limited to the specific methods and instrumentalities disclosed. In the drawings:

FIG. 1 is an illustration of an exemplary environment for providing customer identification and authentication;

FIG. 2 is an operational flow of an implementation of a method for authenticating a customer;

FIG. 3 is an operational flow of an implementation of a method for identifying a customer;

FIG. 4 is an operational flow of an implementation of a method for identifying fraudulent customers;

FIG. 5 shows an exemplary computing environment in which example embodiments and aspects may be implemented.

DETAILED DESCRIPTION

FIG. 1 is an illustration of an environment 100 for authenticating and identifying callers. The environment 100 may be implemented by a call center or any other entity that receives calls from customers or clients. A customer 102 may use a computing device 105 (or a telephone 106) to initiate a call with an agent 152 associated with the environment 100. The agent 152 may receive the call via a channel 108 such as a VOIP line, POTS line, or a cellular channel. Any channel suitable for voice communication may be used. Note as used herein call may refer to the call received from the customer or a copy of the call received from the customer.

The agent 152 may receive the call from the customer 102 on an agent computing device 155. The agent computing device 155 may be equipped with both human and virtual voice agent capabilities.

Besides the agent 152, the call may also be received (at the same time or later) by a computing device 110 associated with the call center environment 100. The computing device 110 may provide one or more call center services to the customer 102 such as interactive voice response services (“IVR”) where the user may be presented with an automated system that may determine the optimal agent 152 to direct the call, may determine the identity of the customer 102, or may retrieve other information from the customer in an automated way.

As may be appreciated, the computing device 105, agent computing device 155, and the computing device 110 may each be implemented by one or more general purpose computing devices such as the computing device 500 illustrated with respect to FIG. 5 . Depending on the embodiment, the computing device 110 may be part of a voice recorder or other device performing functions in a call center.

To authenticate and identify the customers 102, the computing device 110 may include one or more modules. As illustrated, these modules include an interest module 115 and a biometrics module 120. More or fewer modules may be supported. Depending on the implementation, some or all of the modules 115 and 120 may be implemented the same computing device 110, or by some combination of computing devices 110. In addition, some or all of the modules 115 and 120 may be implemented by a cloud-based computing system.

In general, one way to authenticate a customer 102 using voice is referred to as active voice authentication. Traditionally, for active voice authentication, one or more voiceprints 121 are generated for a customer 102 by having the customer 102 train the system by repeatedly speaking one or more words or phrases to the call center during a training phase. Later, when the customer 102 calls the call center the customer 102 is asked to repeat the one or more words or phrases in order to authenticate the user. While active voice authentication is effective, requiring the user to train the system is burdensome and leads to a low participation rate.

Another common way to authenticate a customer 102 using voice is referred to as passive voice authentication. For passive voice authentication, a recording of the customer 102 speaking is used to create a general representation of how the customer 102 speaks that is unrelated to any particular word or phrase. When a customer 102 calls the call center, their speaking voice is processed with the representation to authenticate the customer 102. Passive voice authentication does not require an active training phase where the customer 102 is required to speak certain words or phrases which is an improvement on active voice authentication. However, passive voice authentication requires a large amount of spoken voice data from a customer 102 to authenticate, which may result in a significant delay from when a call begins and when the customer 102 is authenticated.

To provide authentication and identification services using active voice authentication but without the drawbacks associated with an active training phase, the interest module 115 and biometrics module 120 may use what are referred to herein as audios-of-interest 117. An audio-of-interest 117 may be a word or phrase that is typically spoken by a customer 102 during a call. Examples include the name of the customer, the city or address associated with the customer, a telephone number associated with a customer, or an account number associated with a customer. Other examples of audio-of-interest 117 may include common words such as “yes”, “no”, “thank you”, or “okay.” The audio-of-interest may not be words in the spoken language. Phonemes (or a basic unit of sound) may be pulled from words matching. English has a finite number (44) of phonemes which all words are made up from. Using this the training words for a voiceprint need not be the same words used for verification.

The audio-of-interest 117 may be used to quickly authenticate and/or identify a customer 102 on a call based on the voice of the customer 102. In some embodiments, the audios-of-interest 117 may be selected to be a word or phrase that is typically spoken by a customer 102 at around the beginning of a call. This may ensure that the customer 102 can be quickly authenticated or identified at the beginning of the call.

Depending on the embodiment, the audios-of-interest 117 may be consecutive or non-consecutive words or phrases. For example, a consecutive audio-of-interest 117 may be an account number, whereas a non-consecutive audio-of-interest 117 may be the first, third, and fifth digit of the account number.

In some embodiments, the audio-of-interest 117 may be most of, or a large portion of, the call. In such embodiments, the audio-of-interest 117 may function similarly as a passive biometric voiceprint.

In some embodiments, each customer 102 may use the same audio-of-interest 117. For example, each customer 102 may use their name as their associated audio-of-interest 117 or may use their account number as their audio-of-interest 117. Alternatively, customers 102 may have different audios-of-interest 117. For example, one customer 102 may use their first name as their audio-of-interest 117, while another customer 102 may use their last name as their audio-of-interest 117. In embodiments where different audios-of-interest 117 are used by customers 102, the particular audio-of-interest 117 used by a customer 102 may be identified in a customer profile 123 associated with the customer 102, for example.

In some embodiments, when a customer 102 makes their first call with a call center, after authenticating the customer 102 using two factor authentication or some other means, the interest module 115 may identify and extract voice data from the call corresponding to the audio-of-interest 117. For example, if the audio-of-interest 117 is the name of the customer 102, the interest module 115 may extract the audio-of-interest 117 from the call at or around the time that the customer 102 is saying their name. Depending on the embodiment, the interest module 115 may extract the voice data (and audio-of-interest 117) from the call in real-time, or near-real time. Alternatively, the interest module 115 may extract the voice data from a recording, or partial recording, of the call.

As may be appreciated, the audio-of-interest 117 is extracted from the normal back and forth conversation associated with the call. There is no explicit or required training phase where the customer 102 is asked to repeat the audio-of-interest 117.

The interest module 115 may process the extracted audio-of-interest 117 for a customer 102 and may generate and store one or more voiceprints 121 for the customer 102. A voiceprint 121 is a digital structure that is unique to a customer 102 and that can be later used to identify or authenticate the customer 102 when the customer 102 speaks the word or phase that corresponds to the audio-of-interest 117 that was used to create the voiceprint 121. Any method or technique for creating voiceprints 121 may be used.

In some implementations, rather than extract audio-of-interest 117 from a call, the interest module 115 may identify where in a particular recording of a call the audio-of-interest 117 is located. A pointer to the audio-of-interest 117 may then be stored by the interest module 115 along with some or all of the recording of the call.

In some implementations, voiceprints 121 associated with a customer 102 or account may relate to behavioral characteristics about how the customer 102 speaks or says certain phrases. For example, a customer 102 may have the behavior characteristics of always speaking each number of their phone number (i.e., “three”, “zero”, “zero”, “eight”, “zero”, five”, “six”). Another customer may have the behavior characteristic of grouping certain digits of their phone number into larger numbers (i.e., “three-hundred”, “eight”, “zero”, five”, “six”). As another example, a customer 102 may always say their zip code first when speaking their address. Other types of behavioral characteristics may be included.

In some embodiments, each audio-of-interest 117 for a customer 102 or account may be associated with a separate voice print 121. Alternatively, a single voiceprint 121 may be used that includes all of the audios-of-interest 117 that may be used fora customer 102. The voiceprint 121 may also include behavioral characteristics and any other information that may be used to authenticate a customer 102 such as face biometrics, fingerprints, etc.

The interest module 115 may use the stored voiceprints 121 to authenticate and/or identify customers 102. With respect to authentication, when a customer 102 initiates a call with the call center, the agent 152 (or an interactive voice response system (“IVR”)) may initially identify the customer 102 on the call based on information indirectly or directly provided by the customer 102. For example, the customer 102 may be identified based on the telephone number that they used to place the call, or based on the name, address, or customer number that they provided to the agent 152 or IVR system.

The interest module 115 may continuously update or improve on the stored voiceprints 121 for each customer 102. After a customer 102 is authenticated using audio-of-interest 117, the interest module 115 may update some or all of the stored voiceprints 121 based on the audio-of-interest 117. As may be appreciated, overtime the voice associated with a customer 102 may change slightly. By continuously updating the stored voiceprints 121 using recent audios-of-interest 117 these changes may be reflected in the stored voiceprints 121.

The interest module 115 may extract the audio-of-interest 117 from the call. Depending on the embodiment and type of audio-of-interest 117, the interest module 115 may extract the audio-of-interest 117 based on a script or workflow associated with the call. As may be appreciated, most agents 152 and IVR systems use a workflow or script that specifies how the agent 152 and IVR system interact with the customer 102 including the questions that are asked during the call. Accordingly, the interest module 115 may use the script or workflow to determine a time or place in the call when the audio-of-interest 117 is likely to appear in the call and may extract the audio-of-interest 117 at the determined time and place. Any method may be used.

For example, for an audio-of-interest 117 of a customer 102 name, the workflow may indicate that the agent 152 asks the customer 102 to speak their name as the first question during the call. Accordingly, the interest module 115 may look at or around the time of the first question in the call for audio-of-interest 117 that corresponds to the customer 102 speaking their name. In another example, the interest module 115 may detect that agent computing device 155 has just displayed a text box that the agent 152 uses to enter the account number of the customer 102. Accordingly, the interest module 115 may determine that the customer has likely been asked their account number and may begin extracting audio-of-interest 117 from the call.

Alternatively, or in addition to the workflow, the interest module 115 may process the call using speech recognition to identify one or more portions of the call that likely correspond to the audio-of-interest 117. For example, where the audio-of-interest 117 is the customer number, the interest module 115 may use speech recognition to identify portions of the call where the customer is speaking numbers. The interest module 115 may extract the audio-of-interest 117 from the identified portions.

As may be appreciated, interest module 115 may use the workflow-based extraction in combination with the speech-recognition-based extraction. For example, where the audio-of-interest 117 is a customer number, the workflow may indicate that the customer 102 is asked to recite their customer number as the third question. Accordingly, the interest module 115 may use the speech recognition to identify portions of the call where the customer is speaking numbers after the third question.

In some embodiments, the computing device 110 may include an optional speech module 125. The speech module 125 may work with the interest module 125 to process audio and identify the audio-of-interest 117. The speech module 125 may use speech recognition to determine what questions are being asked by the agent 152 and may then determine when to extract the audio-of-interest 117 from the audio. As another example, where the audio-of-interest 117 is specific numbers being spoken by the customer 102, the speech module 125 may recognize when the specific numbers are being spoken by the customer 102 and may extract the numbers from the audio as the audio-of-interest 117.

The biometrics module 120 may receive the extracted audio-of-interest 117 from the interest module 115 and may use the extracted audio-of-interest 117 to authenticate the customer 102 associated with the call. In some embodiments, the biometrics module 120 may retrieve one or more voiceprints 121 associated with the customer 102 and may determine if the extracted audio-of-interest 117 matches any of the retrieved one or more voiceprints 121 associated with the customer 102. If the extracted audio-of-interest 117 matches any of the retrieved one or more voiceprints 121 associated with the customer 102, the biometrics module 120 may determine that the customer 102 is authenticated.

In other embodiments, the biometrics module 120 may determine if the extracted audio-of-interest 117 matches all of the retrieved one or more voiceprints 121 associated with the customer 102. And only when the extracted audio-of-interest 117 matches all of the retrieved one or more voiceprints 121 associated with the customer 102, may the biometrics module 120 determine that the customer 102 is authenticated.

Any method for determining if extracted audio-of-interest 117 matches a voiceprint 121 may be used. In some implementations, the biometrics module 120 may calculate a confidence that the extracted audio-of-interest 117 matches a voiceprint 121. If the calculated confidence satisfies a threshold confidence (e.g., is greater than or equal to the threshold confidence), then the biometrics module 120 may determine that the extracted audio-of-interest 117 matches the voiceprint 121. Else, the biometrics module 120 may determine the that the extracted-audio-of-interest 117 does not match the voiceprint 121. The threshold confidence may be set by a user or administrator, for example.

The biometrics module 120 may generate and transmit a message 118 indicating whether the customer 102 was authenticated based on the extracted audio-of-interest 117. The message 118 may be transmitted to the agent computing device 155 and displayed to the agent 152. Depending on the embodiment, if the message 118 indicates that the customer 102 could not be authenticated based on the audio-of-interest 117 the agent 152 may attempt to authenticate the customer 102 using other methods such as two factor authentication or by using security questions. Any method for authenticating a customer 102 may be used.

In addition to authentication, the interest module 115 and biometrics module 120 may further perform customer 102 identification using the stored voiceprints 121. In such embodiments, when a call is initially received by an agent 152 or IVR system, the interest module 115 may extract the audio-of-interest from the call as described above and may provide the extracted audio-of-interest 117 to the biometrics module 120. The biometrics module 120 may then identify the customer 102 by comparing the extracted audio-of-interest 117 with the stored voiceprints 121 associated with some or all of the known customers 120. If the extracted audio-of-interest 117 matches a voiceprint 121, then the biometrics module 120 may identify the customer 102 associated with the call as the customer 102 associated with the matching voiceprint 121. The biometrics module 120 may then send a message 118 to the agent 152 or IVR system indicating whether the customer 102 was identified, and if so, the identity of the customer 102. If the customer 102 could not be identified the agent 152 or IVR system may identify the customer 102 using different methods.

As may be appreciated, one benefit of identifying the customer 102 using the audio-of-interest 117 and the voiceprints 121 is that after the customer 102 is identified they are also authenticated. Accordingly, the amount of time required to both identify and authenticate the customer 102 is reduced, which may result in a reduced call time and an increased call experience for the customer 102. Reduced call times increases the overall number of calls that a call center can handle and may also reduce the overall number of agents 152 needed at the call center.

The interest module 115 and biometrics module 120 may further perform fraud detection using the stored voiceprints 121. In particular, the biometrics module 120 may determine if a customer 102 is likely a fraudulent customer 102 (i.e., a customer 102 or other individual that was previously associated with fraud or fraudulent activities). In such embodiments, when a call is initially received by an agent 152 or IVR system, the interest module 115 may extract the audio-of-interest 117 from the call as described above and may provide the extracted audio-of-interest 117 to the biometrics module 120. The biometrics module 120 may then compare the extracted audio-of-interest 117 with stored voiceprints 121 associated with known bad actors or fraudulent customers 102. If the extracted audio-of-interest 117 matches a stored voiceprint 121, then the biometrics module 120 may identify the customer 102 as a fraudulent customer 102. The biometrics module 120 may then send a message 118 to the agent 152 or IVR system indicating that the customer 102 is likely a fraudulent customer 102. The agent 152 or IVR system may then take actions such as escalating the call to a fraud specialist, terminating the call, or what ever actions may be specified for fraudulent calls by the call center.

In some implementations, when a customer 102 cannot be authenticated by the computing device 110, any voiceprints 121 associated with the customer 102 may be considered by the biometrics module 120 when detecting fraud. While the customer 102 may not be a known fraudulent customer, the authentication failure may indicate that the customer 102 may be attempting to breech one or more accounts. If the biometrics module 120 recognizes the customer 102 attempting to access another account at a later time, the voiceprints 121 associated with the customer 102 may be added by the biometrics module 120 to the list of known bad actors or fraudulent customers 102.

In some embodiments, where the audio-of-interest 117 is passive biometric voiceprint, different thresholds may be used by the biometrics module 120 for verification, identification, and fraud detection or prevention.

Note that the authentication and fraud detection processes described above may not be performed in any particular order with respect to each other and may in fact be performed at approximately the same time. Accordingly, when a customer 102 calls the agent computing device 155, the computing device 110 may begin the authentication process while the computing device 110 also begins the fraud detection process.

Note that the use of the computing device 110 (and interest module 115 and biometrics module 120) is not specifically limited to use within call centers. For example, a user may use a banking app on their smartphone. The banking app may include a biometrics module 120 that has access to, or stores, one or more voiceprints 121 associated with the user. The voice prints 121 may have been learned by the computing device 110 at the call center as described above. When the user attempts to use the app, the interest module 115 also included in the app may prompt the user to speak or say the audio-of-interest 117. The biometrics module 120 may then authenticate the user using the voiceprints 121 and the audio-of-interest 117. The user may then be allowed or denied access to the app based on the authentication.

In another example, a customer may go to a bank branch to speak with a teller. As the customer speaks with the teller, a microphone records audio from the conversation. An interest module 115 associated with the bank branch or a computing device 110 of the teller may extract the audio-of-interest 117 from the recorded audio, and the biometrics module 120 may authenticate the customer using the audio-of-interest 117 and one or more stored voiceprints 121 of the customer. Once the customer is authenticated, the computing device 110 may display a message to the teller.

As may be appreciated, the authentication system described herein may be incorporated into a variety of applications and scenarios where authenticating users based on voice may be useful. For example, the system could be used to authenticate users before they enter airplanes, trains, buses, or other public transportation systems. The system could similarly be used to authenticate residents of a building, or office workers, before the enter the building. The system could be used to authenticate credit card or ATM transactions.

FIG. 2 is an illustration of a method 200 for authenticating a customer 102. The method 200 may be performed by the interest module 115 and/or the biometrics module 130 of the computing device 110.

At 210, a call is received from a customer. The call may be received from a customer 102 by an agent 152, or IVR system, associated with an agent computing device 155. Depending on the embodiment, the agent 152 or IVR system may have identified the customer 102 using information such as the telephone number associated with the call or using information provided by the customer 102 such as a name, address, or account number, for example.

At 215, audio-of-interest 118 is extracted from the call. The audio-of-interest 118 may be extracted from the call by the interest module 115. The audio-of-interest 118 may be extracted from the call in real-time or may be extracted from a recording of the call that was provided to the interest module 115. The audio-of-interest 118 may comprise a recording of the customer 102 speaking a particular word or phrase that may be used to authenticate the customer 102.

At 220, one or more voiceprints associated with the customer 102 are retrieved. The one or more voiceprints 121 may be retrieved by the biometrics module 130. Each voiceprint 121 may have been generated by the biometrics module 130 from previous interactions with the associated customer 102. Depending on the embodiment, the voiceprints 121 may have been generated by an active voiceprint 121 generation process.

At 225, a determination is made as to whether the customer is authenticated. The determination may be made by the biometrics module 130 using the one or more voiceprints 121 associated with the customer 102 and the audio-of-interest 118 extracted for the customer 102 from the call. In some embodiments, the customer 102 is authenticated if at least a portion (or all) of the extracted audio-of-interest 118 matches a voiceprint 121 associated with the customer 102. If the customer 102 is authenticated, then the method 200 may continue at 230. Else, the method 200 may continue at 235.

At 230, a message that the customer is authenticated is transmitted. The message 118 may be transmitted to the agent 152 or IVR system by the biometrics module 130. After receiving the message 118 the agent 152, or IVR system, may proceed as if the customer 102 has been authenticated.

At 235, secondary authentication is performed. The secondary authentication may be performed by the agent 152 or the IVR system. Depending on the embodiment, the secondary authentication may include performing two step authentication or asking one or more security questions.

FIG. 3 is an illustration of a method 300 for identifying a customer 102. The method 300 may be performed by the interest module 115 and/or the biometrics module 130 of the computing device 110.

At 310, a call is received from a customer. The call may be received from a customer 102 by an agent 152, or IVR system, associated with an agent computing device 155. The customer 102 may not have been identified by the agent 152 or IVR system.

At 315, audio-of-interest 118 is extracted from the call. The audio-of-interest 118 may be extracted from the call by the interest module 115. The audio-of-interest 118 may be extracted from the call in real-time or may be extracted from a recording of the call that was provided to the interest module 115. The audio-of-interest 118 may comprise a recording of the customer 102 speaking a particular word or phrase that may be used to authenticate the customer 102.

At 320, voiceprints associated with customers 102 are accessed. The voiceprints 121 may be accessed by the biometrics module 120. The voiceprints 121 may have been generated by the biometrics module 120 for each of the customers 120.

At 325, a determination is made as to whether the customer 102 is identified. The determination may be made by the biometrics module 130 using the accessed voiceprints 121 and the audio-of-interest 118 extracted for the customer 102 from the call. In some embodiments, the biometrics module 130 may attempt to match each of the accessed voiceprints 121 with the extracted audio-of-interest 118. If a voiceprint 121 matching the extracted audio-of-interest 118 is found, then the biometrics module 130 may identify the customer 102 associated with the call as the customer 102 associated with the matching voiceprint 121. If the customer 102 is identified, then the method 300 may continue at 330. Else, the method 300 may continue at 335.

At 330, a message that the customer is identified is transmitted. The message 118 may be transmitted to the agent 152 or IVR system by the biometrics module 130. Because the customer 102 was also authenticated by virtue of the matching voiceprint 121, the message 118 may further indicate that the customer 102 was also authenticated.

At 335, secondary identification is performed. The secondary identification may be performed by the agent 152, the IVR system, or other modules or systems. For example, the secondary identification may include asking the customer 102 to state their name or account number. Other examples the secondary identification may include passive voice biometrics and face biometrics. Other methods for customer identification and/or verification may be used.

FIG. 4 is an illustration of a method 400 for determining if a customer is a fraudulent customer. The method 400 may be performed by the interest module 115 and/or the biometrics module 130 of the computing device 110.

At 410, a call is received from a customer. The call may be received from a customer 102 by an agent 152, or IVR system, associated with an agent computing device 155. Depending on the embodiment, the agent 152 or IVR system may have identified the customer 102 using information such as the telephone number associated with the call or using information provided by the customer 102 such as a name, address, or account number, for example.

At 415, audio-of-interest 118 is extracted from the call. The audio-of-interest 118 may be extracted from the call by the interest module 115. The audio-of-interest 118 may be extracted from the call in real-time, or may be extracted from a recording of the call that was provided to the interest module 115. The audio-of-interest 118 may comprise a recording of the customer 102 speaking a particular word or phrase that may be used to authenticate the customer 102.

At 420, one or more voiceprints associated with fraud are retrieved. The one or more voiceprints 121 may be retrieved by the biometrics module 130. Each voiceprint 121 may have been generated by the biometrics module 130 from interactions with known fraudulent customers 102. Depending on the embodiment, the biometrics module 130 may maintain a “blacklist” of fraudulent customers 102 along with one or more voiceprints 121 generated for each fraudulent customer 102. After a call associated with a customer 102 is determined to be fraudulent, any voiceprints 121 associated with the customer 102 may be added to the blacklist. If no such voiceprints 121 exist, the biometrics module 130 may generate voiceprints 121 for the customer 102 from the last call recorded for the customer 102.

At 425, a determination is made as to whether the customer is a fraudulent customer. The determination may be made by the biometrics module 130 using the retrieved voiceprints 121 associated with fraud. In some embodiments, if the extracted audio-of-interest 118 matches any of the voiceprints 121 associated with fraud, then the customer 102 may be determined to be a fraudulent customer 102. If the customer 102 is determined to be a fraudulent customer 102, then the method 400 may continue at 430. Else, the method 400 may continue at 435.

At 430, a message that the customer is a fraudulent customer is transmitted. The message 118 may be transmitted to the agent 152 or IVR system by the biometrics module 130. After receiving the message 118 the agent 152, or IVR system, may end the call, or may escalate the call to an agent 152 specializing in fraud.

At 435, a message that the customer is not a fraudulent customer is transmitted. The message 118 may be transmitted to the agent 152 or IVR system by the biometrics module 130. After receiving the message 118 the agent 152, or IVR system, may proceed with the call.

FIG. 5 shows an exemplary computing environment in which example embodiments and aspects may be implemented. The computing device environment is only one example of a suitable computing environment and is not intended to suggest any limitation as to the scope of use or functionality.

Numerous other general purpose or special purpose computing devices environments or configurations may be used. Examples of well-known computing devices, environments, and/or configurations that may be suitable for use include, but are not limited to, personal computers, server computers, handheld or laptop devices, multiprocessor systems, microprocessor-based systems, network personal computers (PCs), minicomputers, mainframe computers, embedded systems, distributed computing environments that include any of the above systems or devices, and the like.

Computer-executable instructions, such as program modules, being executed by a computer may be used. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. Distributed computing environments may be used where tasks are performed by remote processing devices that are linked through a communications network or other data transmission medium. In a distributed computing environment, program modules and other data may be located in both local and remote computer storage media including memory storage devices.

With reference to FIG. 5 , an exemplary system for implementing aspects described herein includes a computing device, such as computing device 500. In its most basic configuration, computing device 500 typically includes at least one processing unit 502 and memory 504. Depending on the exact configuration and type of computing device, memory 504 may be volatile (such as random access memory (RAM)), non-volatile (such as read-only memory (ROM), flash memory, etc.), or some combination of the two. This most basic configuration is illustrated in FIG. 5 by dashed line 506.

Computing device 500 may have additional features/functionality. For example, computing device 500 may include additional storage (removable and/or non-removable) including, but not limited to, magnetic or optical disks or tape. Such additional storage is illustrated in FIG. 5 by removable storage 508 and non-removable storage 510.

Computing device 500 typically includes a variety of computer readable media. Computer readable media can be any available media that can be accessed by the device 500 and includes both volatile and non-volatile media, removable and non-removable media.

Computer storage media include volatile and non-volatile, and removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. Memory 504, removable storage 508, and non-removable storage 510 are all examples of computer storage media. Computer storage media include, but are not limited to, RAM, ROM, electrically erasable program read-only memory (EEPROM), flash memory or other memory technology, CD-ROM, digital versatile disks (DVD) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information and which can be accessed by computing device 600. Any such computer storage media may be part of computing device 500.

Computing device 500 may contain communication connection(s) 512 that allow the device to communicate with other devices. Computing device 500 may also have input device(s) 514 such as a keyboard, mouse, pen, voice input device, touch input device, etc. Output device(s) 516 such as a display, speakers, printer, etc. may also be included. All these devices are well known in the art and need not be discussed at length here.

It should be understood that the various techniques described herein may be implemented in connection with hardware components or software components or, where appropriate, with a combination of both. Illustrative types of hardware components that can be used include Field-programmable Gate Arrays (FPGAs), Application-specific Integrated Circuits (ASICs), Application-specific Standard Products (ASSPs), System-on-a-chip systems (SOCs), Complex Programmable Logic Devices (CPLDs), etc. The methods and apparatus of the presently disclosed subject matter, or certain aspects or portions thereof, may take the form of program code (i.e., instructions) embodied in tangible media, such as floppy diskettes, CD-ROMs, hard drives, or any other machine-readable storage medium where, when the program code is loaded into and executed by a machine, such as a computer, the machine becomes an apparatus for practicing the presently disclosed subject matter.

Although exemplary implementations may refer to utilizing aspects of the presently disclosed subject matter in the context of one or more stand-alone computer systems, the subject matter is not so limited, but rather may be implemented in connection with any computing environment, such as a network or distributed computing environment. Still further, aspects of the presently disclosed subject matter may be implemented in or across a plurality of processing chips or devices, and storage may similarly be effected across a plurality of devices. Such devices might include personal computers, network servers, and handheld devices, for example.

Although the subject matter has been described in language specific to structural features and/or methodological acts, it is to be understood that the subject matter defined in the appended claims is not necessarily limited to the specific features or acts described above. Rather, the specific features and acts described above are disclosed as example forms of implementing the claims. 

What is claimed:
 1. A system for authenticating and identifying customers comprising: one or more processors; a memory communicably coupled to the one or more processors and storing: an interest module including instructions that when executed by the one or more processors cause the system to: receive a call, wherein the call is associated with a customer of a plurality of customers; retrieve a customer profile associated with the customer; determine an audio-of-interest associated with the customer based on the customer profile, wherein each customer is associated with a different audio-of-interest; identify where the audio-of-interest is spoken by the customer in the received call based at least on (a) a customer workflow associated with the call, and (b) data being displayed on an agent computing device associated with the call; and store a pointer to the audio-of-interest with a recording of the received call; and a biometrics module including instructions that when executed by the one or more processors cause the system to: retrieve the audio-of-interest from the received call using the stored pointer; retrieve a plurality of voiceprints associated with the customer; identify one or more behavioral characteristics associated with the plurality of voiceprints that relate to how the customer utters the audio-of-interest including at least one of a specific grouping of terms or numbers and a specific ordering of terms or numbers when providing requested identifying information; based on the one or more behavioral characteristics, determine if the customer is authenticated; if it is determined that the customer is authenticated, transmit a message that the customer is authenticated; enhance the one or more voiceprints to include the audio-of-interest as an active voiceprint; and store the enhanced one or more voiceprints for authenticating the customer during a subsequent call.
 2. The system of claim 1, wherein the biometric module further includes instructions that when executed by the one or more processors cause the system to: if it is determined that the customer is not authenticated, perform a secondary authentication.
 3. The system of claim 1, wherein the biometrics module further includes instructions that when executed by the one or more processors cause the system to: determine that one or more of the one or more voiceprints associated with the customer matches at least a portion of the audio-of interest with a confidence that satisfies a threshold confidence; and determine that the customer is authenticated in response to determining that the confidence satisfies the threshold confidence.
 4. The system of claim 1, wherein the interest module further includes instructions that when executed by the one or more processors cause the system to: detect that the audio-of-interest is being spoken by the customer; and extract the audio-of-interest from the received call in response to detecting that the audio-of-interest is being spoken.
 5. The system of claim 1, wherein the interest module further includes instructions that when executed by the one or more processors cause the system to: determine a time when the audio-of interest is likely to be spoken by the customer during the call based on a script associated with the call; and extract the audio-of interest from the received call at the determined time in response to determining that the audio-of interest is likely to be spoken by the customer.
 6. The system of claim 1, wherein the audio-of-interest comprises one or more words or phrases spoken by the customer during the call.
 7. The system of claim 1, wherein the audio-of interest comprises a non-consecutive sequence of digits of an account number associated with the customer.
 8. The system of claim 1, wherein the biometrics module further includes instructions that when executed by the one or more processors cause the system to: receive the audio-of interest; retrieve one or more voiceprints associated with each customer of a plurality of customers; based on the one or more voiceprints and the audio-of interest, identify the customer associated with the call from among the plurality of customers; and transmit a message that the customer is identified.
 9. The system of claim 1, wherein the biometrics module further includes instructions that when executed by the one or more processors cause the system to: receive the audio-of interest; retrieve one or more voiceprints associated with fraudulent customers of a plurality of customers; based on the one or more voiceprints and the audio-of interest, identify the customer associated with the call as a fraudulent customer; and transmit a message that the customer is a fraudulent customer.
 10. The system of claim 1, wherein the audio of interest comprises one or more phonemes.
 11. A method for authenticating and identifying customers comprising: receiving a call, wherein the call is associated with a customer of a plurality of customers; retrieving a customer profile associated with the customer; determining an audio-of-interest associated with the customer based on the customer profile, wherein each customer is associated with a different audio-of-interest; identifying where the audio-of-interest is spoken by the customer in the received call based at least on (a) a customer workflow associated with the call, and (b) data being displayed on an agent computing device associated with the call; storing a pointer to the audio-of-interest with a recording of the received call; retrieving the audio-of-interest from the received call using the stored pointer; retrieving a plurality of voiceprints associated with the customer; identifying one or more behavioral characteristics associated with the plurality of voiceprints that relate to how the customer utters the audio-of-interest including at least one of a specific grouping of or numbers terms and a specific ordering of terms or numbers when providing requested identifying information; based on the one or more behavioral characteristics, determining if the customer is authenticated; if it is determined that the customer is authenticated, transmitting a message that the customer is authenticated; enhancing the one or more voiceprints to include the audio-of-interest as an active voiceprint; and storing the enhanced one or more voiceprints for authenticating the customer during a subsequent call.
 12. The method of claim 11, further comprising: if it is determined that the customer is not authenticated, performing a secondary authentication.
 13. The methods of claim 11, wherein determining if the customer is authenticated comprises: determining that one or more of the one or more voiceprints associated with the customer matches at least a portion of the audio-of interest with a confidence that satisfies a threshold confidence; and determining that the customer is authenticated in response to determining that the confidence satisfies the threshold confidence.
 14. The method of claim 13, wherein there are multiple threshold confidences and each threshold confidence is associated with a different allowed action.
 15. The method of claim 11, further comprising: identifying portions of the call where the customer is speaking numbers using voice recognition; and extracting the audio-of-interest from the identified portions of the call.
 16. The method of claim 11, further comprising: determining that the audio-of-interest is likely to be spoken by the customer based on the customer workflow associated with the call; and extracting the audio-of-interest from the received call in response to determining that the audio of interest is likely to be spoken by the customer.
 17. The method of claim 11, wherein the audio-of-interest comprises a non-consecutive sequence of words or phrases spoken by the customer during the call.
 18. The method of claim 11, further comprising: receiving the audio-of-interest; retrieving one or more voiceprints associated with each customer of a plurality of customers; based on the one or more voiceprints and the audio-of-interest, identifying the customer associated with the call from among the plurality of customers; and transmitting a message that the customer is identified.
 19. A non-transitory computer-readable medium with instructions stored thereon that when executed by a processor of a processing system cause the processing system to perform a method, the method comprising: receive a call, wherein the call is associated with a customer of a plurality of customers; retrieve a customer profile associated with the customer; determine an audio-of-interest associated with the customer based on the customer profile, wherein each customer is associated with a different audio-of-interest; identify where the audio-of-interest is spoken by the customer in the received call based at least on (a) a customer workflow associated with the call, and (b) data being displayed on an agent computing device associated with the call; store a pointer to the audio-of-interest with a recording of the received call; retrieve the audio-of-interest from the received call using the stored pointer; retrieve a plurality of voiceprints associated with the customer; identify one or more behavioral characteristics associated with the plurality of voiceprints that relate to how the customer utters the audio-of-interest including at least one of a specific grouping of terms or numbers and a specific ordering of terms or numbers when providing requested identifying information; based on the one or more behavioral characteristics, determine if the customer is authenticated; if it is determined that the customer is authenticated, transmit a message that the customer is authenticated; enhance the one or more voiceprints to include the audio-of-interest as an active voiceprint; and store the enhanced one or more voiceprints for authenticating the customer during a subsequent call. 